Full List

Search

Recent Breaches

• Cornelia, GA December 26, 2020 • [ ransomware, malware, government ] The City of Cornelia suffered a ransomware attack on the day after Christmas.
• Jones Day December 25, 2020 A hacking group has posted files that it claims to be from Jones Day after the law firm was hit by a data breach at one of its vendors. Jones Day denied that its own network had been hacked and said the vendor hack was not a ransomware attack.
• Now:Pensions December 25, 2020 About 30,000 customers of Now:Pensions have their sensitive personal details being posted on the internet after an outside contractor is breached.
• QIMR Berghofer December 25, 2020 QIMR Berghofer Medical Research Institute disclosed a data breach caused by a vulnerability in the Accellion FTA secure file transfer software. According to the research institute, the data breach appears to have occurred on December 25, 2020, when threat actors accessed approximately 4 percent, or 620MB, of data stored on the Accellion FTA service.
• Office of the Washington State Auditor December 25, 2020 • [ leak, misconfiguration, government ] Washington's State Auditor office has suffered a data breach that exposed the personal information in 1.6 million employment claims. The Office of the Washington State Auditor ("SAO") states that they suffered a data breach after a threat actor exploited a vulnerability in a secure file transfer service from Accellion.
• Portnox December 25, 2020 • [ ransomware, malware, technology ] The ransomware group Pay2Key, which has been linked to Iran, claims to have stolen almost 1TB of data (and as proof publishes 3 gigabytes) from the Israeli cyber security company Portnox.
• Singtel December 25, 2020 Singtel and the QIMR Berghofer Medical Research Institute disclosed data breaches caused by a vulnerability in the Accellion FTA secure file transfer software. "A third-party file sharing system provided by Accellion called FTA has been illegally accessed through a zero-day vulnerability or previously unknown vulnerability. Singtel uses this system to share information internally as well as with external stakeholders and organisations," Singtel announced in a security incident notification.
• Aurora Cannabis December 25, 2020 • [ leak ] A data breach at Aurora Cannabis has exposed the personal information of an unknown number of the Canadian company's current and former employees.
• Practice First Medical Management Solutions December 25, 2020 • [ ransomware, malware, healthcare ] A vendor of billing and coding services to health centers is hit by a ransomware attack, protected health information of over 1.2 million people is stolen.
• BitGrail December 24, 2020 A former BitGrail administrator has been found to be responsible for a 120 million euro fraud that was the result of a bug exploit. The defendant in the case purposefully failed to fix the bug and allowed hackers to steal from BitGrail.
• Finalyse December 24, 2020 • [ ransomware, malware, finance ] The Belgian financial consultant Finalyse has fallen victim to a ransomware attack.
• OmniTRAX December 24, 2020 • [ ransomware, malware ] Colorado-based short line rail operator and logistics provider OmniTRAX was hit by a recent ransomware attack and data theft that targeted its corporate parent, Broe Group
• Freedom Finance December 24, 2020 • [ leak, finance ] Russian broker Freedom Finance has admitted to a data leak after the information of 16,000 clients appeared on several shadow forums.
• Scottish Environment Protection Agency December 24, 2020 • [ ransomware, malware, government ] The Scottish Environment Protection Agency is targeted in a cyberattack which has impacted its contact center, internal systems, processes and internal communications. The incident is revealed to be a ransomware attack by the Conti gang.
• Transform Hospital Group December 24, 2020 • [ ransomware, malware, healthcare ] Transform Hospital Group has been attacked by the REvil ransomware threat actors.
• Citrix December 24, 2020 • [ hack, ddos, technology ] Citrix has confirmed that a DDoS attack is affecting its Application Delivery Controller (ADC) networking appliances.
• Innovaphone December 24, 2020 • [ hack ] Innovaphone has been hit by a hacker. The company believes that the hacker's motive was vandalism.
• Sangoma Technologies December 24, 2020 Sangoma has disclosed a data breach after files that were stolen by the Conti ransomware threat actors were published online after an attack.
• The Hospital Group December 24, 2020 • [ ransomware, malware, healthcare ] The REvil ransomware gang hacks The Hospital Group and threatens to release before-and-after pictures of celebrity clients.
• US Department of Justice December 24, 2020 • [ hack, malware, government ] The Department of Justice has revealed that hackers have accessed its networks as a result of the SolarWinds hack. The attackers breached the Department's Office 365 system and read its emails.